Security

Security | Jan 31, 2024

Gen AI-powered cybersecurity? Maybe get identity management fixed first

Sysdig research shows companies still not getting it right when shifting left

Security | Jan 30, 2024

"This actor is not doing the quiet intelligence collection and theft of secrets... they can disrupt major services if, and when, the order comes down,"

Security | Jan 30, 2024

SolarWinds howls back at SEC, accuses agency of "revictimization"

Software firm calls for dismissal of SEC action

patch | Jan 30, 2024

Patch now: Critical Jenkins exploits released

POCs validated, over 45,000 instances still publicly exposed after critical Jenkins vulnerability disclosed.

Security | Jan 30, 2024

US commodities market regulator wants traders to ratchet up resilience

Just how do you make trading places more secure

Security | Jan 29, 2024

How Russian spooks hacked Microsoft, the gap in its “morally indefensible” response, and what CISOs can learn from the attack

Expect to start hearing more about MS Graph...

| ransomware | Jan 26, 2024

EquiLend confirms ransomware attack has crippled $2.4 trillion NGT trading platform.

The attack has been claimed by the prolific LockBit group, which has hit numerous high-profile companies in recent months, often using unpatched Citrix Bleed vulnerabilities.

Security | Jan 25, 2024

Next for The Bear: Hacking HPE inboxes

"Cozy Bear" gained unauthorized access to HPE’s cloud-based email environment

vulnerabilities | Jan 24, 2024

Exploit released for fresh Fortra GoAnywhere bug: CVSS 9.8 and again, nasty. Patch up.

New Fortra GoAnywhere vulnerability CVE-2024-0204

A 10-line exploit is now widely available. Unpatched instances *will* come under attack.

document.currentScript.parentNode.innerHTML = (parseInt(document.currentScript.closest('.iteration-container').dataset.length)).toString();